Overview

overview

6

Static

static

3

mGBA-0.10....E.html

windows7-x64

1

mGBA-0.10....E.html

windows10-2004-x64

1

mGBA-0.10....E.html

windows7-x64

1

mGBA-0.10....E.html

windows10-2004-x64

1

mGBA-0.10....S.html

windows7-x64

1

mGBA-0.10....S.html

windows10-2004-x64

1

mGBA-0.10....N.html

windows7-x64

1

mGBA-0.10....N.html

windows10-2004-x64

1

mGBA-0.10....BA.exe

windows7-x64

1

mGBA-0.10....BA.exe

windows10-2004-x64

6

mGBA-0.10....dl.exe

windows7-x64

1

mGBA-0.10....dl.exe

windows10-2004-x64

1

mGBA-0.10....mon.js

windows7-x64

3

mGBA-0.10....mon.js

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    26-05-2024 23:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    mGBA-0.10.3-win32/README.html

  • Size

    14KB

  • MD5

    eba6ef85acfde22aa764dbdad65ff861

  • SHA1

    5577d7bd24282e3477da83699081ab8791420653

  • SHA256

    85c27a644f1e4bfd1bb50a7dad3b234ddafca3c4b0cb97b089870d963a77d8aa

  • SHA512

    94b04405534572478bc01bad787eb71e7e52e2c0285bc5f7ce8335f05ba8152499fc53a1a8480c26e2f54b1af6b00eb67f82d23d3a16fc5aa1d02affaa109050

  • SSDEEP

    384:U7toLwE+3ZWF6cWlpQUQe3ZD9a8NTP/KkHg:UkKJWDWuepD9aQKkHg

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\mGBA-0.10.3-win32\README.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2264
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2264 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78f41011e487257940856682f583542c

    SHA1

    9a5570b14dae792046f0559ca0986abee2fa8eaa

    SHA256

    904ea7a0ee95dedb6c51d1da609215a2d272199a6ffad1192e10405b24eb23e2

    SHA512

    9bb1418f64e908ab76bcafef15a72856a678b6c5edca3ced1b01ee47c0b2a16a3cfcc7e1d4f7fccd88273f622b28929e9450840bcbcbddd3eec963751f3cabf8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    70414178a7850b00ab414f6c7c6f1f29

    SHA1

    78f8d87533f7cb37c9e424b7d9da5fcf6e4a373e

    SHA256

    43e293f1beff6bff2bc86bd3e1baf875aeb28d686d59f8eac9a890bc667c91fb

    SHA512

    8cac567a1611ef701d8caf067c8a4749f09fb96503b3d61890ea964ea4ca6983924f19ab0b22e47d227a367737649f9b744d5256ec68114d5296643aca159a36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    81d04f3e26934e29dc52ba939b2ea439

    SHA1

    38fdb4d575f574f85630f7a845874f8c0e84807b

    SHA256

    118ac9011ac43dcc499e6424cd7ecf7642d1b918d01cdc4b6e6418acbca0e327

    SHA512

    452957c2f9308f42436c675bef889438cf65e91b6474d7fc3e593c8bc761e71b1643bcfe54283a18eb26ea5459fc03b04cab8f82deba413f136a6530edaacba6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    60956a98e3dae5b5086e72b55fb2ca9b

    SHA1

    e34d3b2c193dc4f5b85b25d4dca84819cae27ccd

    SHA256

    16c58bd14618a76e15e5fd5873ea5e2e0a14f17b03e51407f31d5040066c82f5

    SHA512

    8cda89ba273f7408504de9956c4d4855b39c9abe5d8815d8e1e33db0d0a28838c16fbf6dbe290f9bcf6ac3d1ed9c7f0ae66b587586b7e218d21f6abc742cdb64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d8845e558436fd74cf1395ba3f03fad1

    SHA1

    b247b4d930e17a1431b1ee3621cb63e661ff3547

    SHA256

    8d278581cf19c148f373c7ca004ab18149e39997002082b411d6bed62161e079

    SHA512

    a5ceb5472fc6840a18c5d59c0e6e9113fa569332eef51a2ae8a27f604c4e2b7fc234f09a47565e5bce525d961fd005e055100c8ea576e968bcc59d2074cbaf54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1dab0218c2c7ee11c981928c66920327

    SHA1

    de72d217462f2faa92155cb2052454dac043ed40

    SHA256

    97745bb123b772ca897b88ec3dbb6c6560724f24c74333b5ff040f65fb462935

    SHA512

    b73ecbc2e1e907bfc83fd7254734468a1ba70b0b54bdffb0031378f492159aa29a54f738211cba0f7bdac32f96afeeb57a9e72ddde2b7165fb770e976ddc99d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0a566af3d5501dea9e1adb16f006b9de

    SHA1

    f71a8454216f93626e692b0130587d84f6854aa2

    SHA256

    0905723e5543bd5c993989b5d22832418e72e8c9442ac453704a43f2a7c2ba73

    SHA512

    b2a63a99287f1bbf6e1f78004b951536fd4a8dcd0818b9aa9790e6a48b8d0ac1fa7f0757107b307c5ebcd8db3f8a9618d17aa0b86c74f127a559b66972338c76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b77fe635099758032799767095fd436

    SHA1

    65b967333ef2ff4e714c83f4126aa59355a8988f

    SHA256

    98b16dca8de20263d745a83039a26f656f0dfc7c7010736e59f773c391833a85

    SHA512

    4a793c6ff5a7f09bc7ed0194aa8b7412d53411872b07b59f1880aabe3d1c20a142c9732adb8b86958c29abc8810a19c26b02aca7f45deb2521c2289c5f1373d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e8b998d9ad9e913676ffbafcc0497f6b

    SHA1

    69c67087a8cab769cd21d517be23c00e141280af

    SHA256

    f4a3a9f393869a15b68c80c493ea5f4f2250b6e9e77d8fdfe538a17751f780ed

    SHA512

    ffe830330fcbcd767eabf21ac993d3c0a312302dd3d1a8c62b36ed34ff64e20cee11de475a522c80d02bb978c24e6680c02d38bd6fd4433a9ed95ec4f97a5055

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9b428a1bd1a6f241e86d7e12a4470c6

    SHA1

    0b01a31935bf00ddc9c0dc8d1af0e287574f66f1

    SHA256

    af98420626c0a7660a293ff8d8422e9e1eb45d22d987efc06da39984cd2dd719

    SHA512

    ba5d5842bf4cc41077ededfe6d23980fae14391639a68e6daf14ccfa64e09fabf86e761f833a670b08afbfb4e0fa793d2eee361c6125fe481a1146c51b9c576c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c67571764fa6dba2b487a22bb44eeedc

    SHA1

    c7edd4f3d9ce2e6ca41a337a05adc172456cd076

    SHA256

    d810ca9903ec894f3f9144c6e372835a35bbef2333d45a4be6362e1df6890543

    SHA512

    e2797fda17d08de18f04de42452112caf5292f7a17c6e14e9f810274e58bfe3b4116977e3d8d442c2ae375b92d82fd84b5b3e2bb8c5bb3328193bb00dd3cb191

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea7ccc544e8043ed7697691a8f0fa7f3

    SHA1

    2f5020cecb63324c21a0a1d3ca1a1a3190142229

    SHA256

    848722949edd0f6f334bd0979017d91a9635cf9843299ad73193afffe712f09b

    SHA512

    bcb0c74d67b89043de5f251c7bc60f7d3eec8b28fc5afb86305bc16f10f724e14c1e62481c91df532440874d63bd8d7af0d3a118625f3020ff25be0c65116392

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fca560acd5a47fcf73aacdd01fe1346c

    SHA1

    e4e2136786357d54efc6bb7914abc5662d772458

    SHA256

    8620f3006227451145e1548042ce040f24ca85ecb4d5e99a69b2b11c3cddffdb

    SHA512

    c5392b46f6f0ee59a25266282c8e64b8e0afc9d4296a0d209ed90acf4a5c570373dd3eecfe282e9fe4786450bf4f2e20b7c7af1e4cd604dbdc2a428d0fe0b538

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f8caa92ede913d321a9ce868884c2ce3

    SHA1

    5a2491f3d715cd3fcde20486971470259ec573b0

    SHA256

    173270e890825f481ce4a5d6e228492abb69b5d57c2d604aaacc92e29bf3f927

    SHA512

    1957adf07faa75030f43bb3d6ffce7783dc9d02c314bfd3c9cd8881d2a140da2b71040a37115924f33723e5eaf718b8c520a78e945616c110ed9b5bfe2be06c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a46243296bd6cfad6b3710c7829a5f92

    SHA1

    548ffa4ad0b51e31299ba2c1ad57d8ce3db1485b

    SHA256

    73cb9a195f819ae55098724b89662a441cf866c0e9c81b3515ecfe41f281adfd

    SHA512

    78deaff4161e56d612fcbd59146fa821895c9b9e63e1363d360c3368524ab6f34ba9f53babf1c588128b0c29c748daf2844c10e546cce52b5f80d154953cdbad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba6ca8aeb375b6b2df9006a697272f73

    SHA1

    c046558a323d3b03bfe68c3f5cb1915b3e2c9527

    SHA256

    a24cd7d047b9f1ae598fa8c34f6845211672651fd5dd43df9e8725419cd986aa

    SHA512

    ca5ca1b92c50453bbce83e19c22f73d9d4beec6138c0aceaeb3f394d136c7fa01866b125dff525be1f0ead8e13a0372598bb4c6d2eba54a4100ba1a599c496ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d831d804234e02cc22d965a00796796

    SHA1

    926135ec2aab86c02376dbbcd5e454d0f8556162

    SHA256

    e8759b08fc66c6c8f3657399b272217797791ebd45f5b48923291eb25fcc1c57

    SHA512

    02d42cea94130b275466a3d2ebe1b715d7100928bc62d771c73651135239a38c0907386ce5e46d4908ce7ace236e49cfe4baa5fb45988389c8d2e0d2663ceb35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    07449f4f99a6548670865c67124e9237

    SHA1

    9e93fdef5002959ba2fea8fe99b4e872ae212d12

    SHA256

    9fa401f912955fe8cc326272688d3ffe0cbe17a16ad4321d52259da903b3c3d9

    SHA512

    50887c40aa077fc1c28b4ccfd52222aeaeb15ee48e890176543e606959e5d27899f77535c4c225c1a8ba28534d16154d34f0ffd89f699f5fd3d5aa577d113cdc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab9d7ccf2b66634efd86a53c23324f77

    SHA1

    4fdb7e66b5711f65f3853abeba8cc2986858c4d1

    SHA256

    36a0a8e05768968ccf7fc6fef1d850b78dca177cc31ce2f233b19c2b946b0994

    SHA512

    baafd5ca3ba95b01c2123e5fc90b1a50dc92c6b96ceff859fc93e0c68c0baa500908f09fbee1a867227272461edc418f671d0cae2f327f5d4d486f8fe92ad5b7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab42DC.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar434D.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit